
WHAT IS CLAIMED IS: 

1. An updating system for an encrypted key for a wireless LAN in 
which one or more wireless access points (APs) are provided on a 
LAN, said APs being wirelessly connected to one or more wireless 
access terminal devices (STAs) and inwhichdata is encrypted and 

5 transmitted between the AP or APs and the STA or STAs to effect 
communication (encrypted communication), 

said system comprising a key management server (SV) device; 
CP said key management server (SV) device, LAN-connected to 

J; 1 : the AP, comprising: 
10^ SV storage unit for holding k encrypted keys used in the 

m encrypted communication between said AP or APs and the STA or 
M STAs, where k is not less than 1, and 

P an encrypted key generating unit generating said encrypted 

52 key and storing the generated encrypted key in said SV storage 
15 unit; 

said SV device generating said encrypted key in said 
encrypted key generating unit to store the generated encrypted 
key in said SV storage unit, said SV device controlling said 
encrypted key generating unit to update said encrypted key 
20 stored in said SV storage unit to deliver the updated encrypted 
key to said AP and to said STA or STAs. 

2. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 wherein 

upon updating said encrypted key stored in said SV storage 




unit, said SV device generates and updates a sole encrypted key 
at a time by said encrypted key generating unit. 

3. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 wherein 

upon updating said encrypted key stored in said SV storage 
unit, said SV device generates a sole encrypted key at a time by 
said encrypted key generating unit and sequentially updates k 
encrypted keys stored in said SV storage unit one-by-one at a 
preset i n terva I . 

4. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 

wherein 

said SV device sequentially updates (k - 1) of said k 
encrypted keys stored in said SV storage unit one-by-one at a 
preset first interval, said SV device updating the remaining one 
key at a second interval which is longer than that for said (k - 
1) encrypted keys. 

5. The updating system for an encrypted key for a wireless LAN 
as defined in claim 2 

wherein 

said AP comprises an updating unit updating an nth 
encrypted key, stored and managed by said AP or APs, on reception 
of a delivered nth encrypted key updated by said SV device, where 
1 < n < k, and an encryption unit encrypting an encrypted key 
updating notification message, using an encrypted key other than 



said nth encrypted key, for advising said STA or STAs of that 
10 effect; 

said STA comprising a key generating unit generating an STA 
encrypted key updating requesting message on reception of said 
encrypted key updating notification message from said AP and an 
encryption unit encrypting said STA encrypted key updating 
15 requesting message, using the same encrypted key as that used in 
said encrypted key updating notification message, to advise said 
□ AP of that effect; 

W said AP also comprising a transmission unit advising said 

^ SV device of the STA encrypted key updating request on reception 
2p|i of said STA encrypted key updating requesting message from said 
U STA ; 

O said SV device also comprising a verification unit 

m verifying whether or not an encrypted key may be delivered to 
said STA on reception of the STA encrypted key updating 
25 requesting message from said AP, and a delivery unit delivering 
to said AP the encrypted key addressed to said STA if it is 
verified that said encrypted key may be delivered to said STA. 
6. The updating system for an encrypted key for a wireless LAN as 
defined in claim 2 
wherein 

said AP comprises an updating unit updating an nth 
5 encrypted key, stored and managed by said AP or APs, on reception 
of a delivered nth encrypted key updated by said SV, where 1 < 



n < k, and an encryption unit encrypting an encrypted key 
updating notification message, using an initially updated one of 
k encrypted keys stored and managed by said AP, to advise said STA 
10 of that effect; 

said STA comprising a generator unit generating an STA 
encrypted key updating requesting message on reception of said 
encrypted key updating notification message from said AP and an 
encryption unit encrypting said STA encrypted key updating 
15^ requesting message, using the same encrypted key as that used in 
M said encrypted key updating notification message, to advise said 
Z AP of that effect ; 

rn said AP also comprising a transmission unit advising said 

= SV device of the STA encrypted key updating request on reception 
2|3 of said STA encrypted key updating requesting message from said 
I STA; 

^ said SV device also comprising a verification unit 

verifying whether or not an encrypted key may be delivered to 
said STA on reception of the STA encrypted key updating 
25 requesting message from said AP and a del ivery unit del ivering to 
said AP the encrypted key addressed to said STA if it is verified 
that said encrypted key may be delivered to said STA. 
7. The updating system for an encrypted key for a wireless LAN 
as de f i ned i n c I a i m 5 
wherein 

said AP comprises a generator unit generating an STA 
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encrypted key del ivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an encrypted key other than the nth 
encrypted key, to advise said STA of that effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by said STA encrypted key del ivery message from 
sa i d AP. 

8. The updating system for an encrypted key for a wireless LAN 
as defined in claim 6 

wherein 

said AP comprises a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an encrypted key other than the nth 
encrypted key, to advise said STA of that effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by said STA encrypted key del ivery message from 
said AP. 

9. The updating system for an encrypted key for a wireless LAN 
as defined in claim 5 

where i n 



said AP comprises a generator unit generating an STA 
5 encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an initially updated one of k encrypted 
keys stored and managed by said AP, to advise said STA of that 
10 effect; 

said STA also comprising an updating unit updating an nth 
m encrypted key stored and managed by said STA on reception of an 
tj nth encrypted key by delivered said STA encrypted key delivery 
y i message from said AP. 

CO 10. The updating system for an encrypted key for a wireless LAN 
if as defined in claim 6 
^! wherein 

said AP comprises a generator unit generating an STA 
5 encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an initially updated one of k encrypted 
keys stored and managed by said AP, to advise said STA of that 
10 effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by delivered said STA encrypted key delivery 
message from said AP. 




11. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 

wherein 

said STA comprises means for notifying the AP of a lumped 
5 STA encrypted key updating requesting message on detection of a 
preset factor; 

said A P comprising means for notifying said SV device of the 
lumped STA encrypted key updating request on reception of said 
4 lumped STA encrypted key updating requesting message from said 
l| STA; 

ya said SV device comprising means for verifying whether or 

CO not the encrypted key addressed to said STA can be delivered in 
12 a lump to said STA on reception of said lumped STA encrypted key 
^ updating request from said AP, and 

l}s[ means for deliveringencrypted key addressed to said STA in 

lump to said AP if said verifying means has verified that the 
encrypted key can be delivered in a lump to said STA; 

said AP also comprising means for generating a lumped STA 
encrypted key delivery message on reception in lump of said 

20 encrypted keys addressed to said STA from said SV device, and for 
notifying said STA of that effect; 

said STA also comprising means for updating the encrypted 
keys stored in said STA in lump on reception of said lumped STA 
encrypted key delivery message from said AP. 

12. An updating method for an encrypted key for a wireless LAN 




comp r i s i ng : 

(a) providing one or more wireless access points (APs) 
provided on a LAN, said APs being wirelessly connected to one or 

5 more wireless access terminal devices (STAs) and inwhichdata is 
encrypted and transmitted between the AP and the STA or STAs to 
effect communication termed as "encrypted communication", 

(b) generating, by a key management server (SV) device, 
LAN-connected to said AP, k encrypted keys, k being not less than 

10^ 1, used for encrypted communication between said AP and said STA 
^ or STAs, 

v] (c) storing and managing, by said SV device the generated 

m encrypted key, 

f (d) updating the encrypted key under a preset condition, 

1P and 

fi (e) delivering the updated encrypted key to said AP and to 

said STA or STAs. 

13. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

wherein 

said SV device in updating said k encrypted keys stored and 
5 managed by said SV updates said k encrypted keys at a rate of one 
at a time. 

14. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

wherein 




said SV device in updating said k encrypted keys stored and 
managed by said SV device sequentially updates said k encrypted 
keys at a rate of one at a preset time interval. 

15. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

wherein 

said SV device sequentially updates (k - 1) of said k 
encrypted keys stored in and managed by said SV device one-by- 
one at a first preset interval, said SV device updating the 
remaining one key at a second interval longer than for said (k - 
1) encrypted keys. 

16. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

wherein 

said AP has encrypted communication with said STA or STAs 
using an optional encrypted key other than the nth encrypted key 
stored in and managed by said AP, during a period of time since 
updating of the nth encrypted key stored in and managed by said 
AP until the encrypted key is updated next, where 1 < n < k. 

17. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

wherein 

said AP has encrypted communication with said STA or STAs, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key stored in and managed by said AP, during a period 




of time since updating of the nth encrypted key stored in and 
managed by said AP until next updating of encrypted key, where 1 
< n < k. 

18. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

wherein 

said AP has encrypted communication with said STA or STAs, 
using an initially updated one of k encrypted keys stored in and 
managed by said AP. 

19. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

wherein 

said STA or STAs has/have encrypted communication with said 
AP, using an optional one of (k - 1) encrypted keys, other than 
the nth encrypted key, stored in and managed by said STA or STAs. 

20. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

whe re i n 

said STA or STAs has/have communication with said AP, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key, stored in and managed by said STA or STAs. 

21. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

wherein 

said STA or STAs has/have communication with said AP, using 



5 the last updated one of k encrypted keys stored in and managed by 
said STA or STAs. 



E3 

m 
Si 

m 
m 
m 



